$ rpki-client -vvf rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft File: gVvw7iCl3LowV8PTW1jsFHcuj-8.mft (raw, json) Hash identifier: 8BBhoIcqOenUcemd/R9aXxeCrKu7uiugQrJcacUilnc= Subject key identifier: DB:BC:DE:37:90:68:8D:53:18:71:92:70:F7:C1:4B:05:72:BE:7C:90 Authority key identifier: 81:5B:F0:EE:20:A5:DC:BA:30:57:C3:D3:5B:58:EC:14:77:2E:8F:EF Certificate issuer: /CN=A91149E6/serialNumber=815BF0EE20A5DCBA3057C3D35B58EC14772E8FEF Certificate serial: 02DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gVvw7iCl3LowV8PTW1jsFHcuj-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft Manifest number: 02DA Signing time: Thu 03 Jul 2025 01:43:26 +0000 Manifest this update: Thu 03 Jul 2025 01:43:25 +0000 Manifest next update: Thu 10 Jul 2025 01:43:25 +0000 Files and hashes: 1: gVvw7iCl3LowV8PTW1jsFHcuj-8.crl (hash: dFmOthZM0Yscde31tM5PUW0ch59UucSHGXZYWJxPuoI=) 2: 54FEFAA2ED4C11EC821F3D84C4F9AE02.roa (hash: rj+UC+zA9sE5Q8EazPPN8LHfCTVfMALfkukIKXKN97M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.crl rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gVvw7iCl3LowV8PTW1jsFHcuj-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:43:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 733 (0x2dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91149E6, serialNumber=815BF0EE20A5DCBA3057C3D35B58EC14772E8FEF Validity Not Before: Jul 3 01:43:25 2025 GMT Not After : Jul 10 01:43:25 2025 GMT Subject: CN=6865e03e-dbe6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d4:ce:94:0e:a8:a7:92:22:55:01:65:42:26: 3f:e9:e2:14:f1:20:46:bb:cc:85:2e:cd:60:97:12: 80:66:9e:20:bf:84:d0:86:9d:a2:f3:aa:b6:67:8c: 7c:c8:c9:58:2f:46:7e:f1:ba:8a:10:d3:b9:92:b4: 9c:fc:fb:e1:56:17:57:e5:0b:e7:8e:e1:de:0e:25: 56:fc:d0:8c:6e:18:db:49:85:16:ae:34:b0:b7:e8: 61:0b:da:5c:d0:c2:7e:1b:4c:b6:6d:ca:6b:06:40: 39:d6:66:e0:07:61:69:32:a7:41:6f:71:aa:41:1e: 20:3c:5e:ff:5d:8b:a3:e7:51:99:e2:12:8b:aa:86: 40:07:3b:88:0b:1c:26:40:54:ef:4f:3b:a7:5c:d1: 59:ea:64:19:89:fb:3d:5b:74:ea:0a:38:c4:5d:0f: 3e:b5:0c:8a:97:19:35:08:cb:58:d0:f2:51:ff:98: 61:ef:4b:ee:41:78:55:b8:f6:cb:fa:f4:11:ce:ac: 84:6a:43:da:96:0b:26:a9:bc:a9:a9:3a:f6:85:a8: 35:21:0a:21:21:6d:5e:1e:cf:95:b7:0d:eb:dd:a8: 19:ce:d6:eb:e4:b5:a2:78:c8:34:b0:3f:36:55:9d: fb:3b:50:4b:89:87:87:f8:4b:1a:1d:ab:58:68:ad: 08:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:BC:DE:37:90:68:8D:53:18:71:92:70:F7:C1:4B:05:72:BE:7C:90 X509v3 Authority Key Identifier: keyid:81:5B:F0:EE:20:A5:DC:BA:30:57:C3:D3:5B:58:EC:14:77:2E:8F:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gVvw7iCl3LowV8PTW1jsFHcuj-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91149E6/3246FE6EED4811ECB5DE1082C4F9AE02/gVvw7iCl3LowV8PTW1jsFHcuj-8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:e0:e8:f1:a7:d5:06:64:13:8f:81:68:8b:2d:d0:0a:7c:79: c6:21:d3:53:57:4b:97:82:31:8c:82:f1:d1:b1:3f:01:83:a1: 1d:ab:ae:02:12:5f:fa:4f:fa:55:60:8f:99:7a:3c:cb:a9:12: 33:3e:eb:92:70:37:ac:f0:55:fa:b7:e0:d7:dd:14:9b:a2:ef: da:03:64:5f:6c:2e:b9:12:df:97:6e:a7:2c:79:b9:e0:77:50: d9:44:d3:12:8a:b2:07:78:44:99:1c:9e:2b:1e:27:5a:35:34: b4:0a:c1:87:73:ea:e4:26:85:ca:f2:d7:1d:14:68:33:70:0c: 55:d8:9b:42:a4:10:6d:8a:9c:87:7b:81:ff:5e:5b:5c:d5:86: 5c:eb:15:b7:5f:96:8d:5c:81:d9:f6:7c:b8:db:6d:bf:a9:14: 32:01:83:61:ba:4e:c4:d0:95:c3:bf:a8:a3:52:ab:f4:e3:fd: 4a:52:5a:21:df:b8:54:49:22:02:69:51:d4:1e:f1:d1:10:f5: 41:f3:99:ba:88:c1:09:7e:d1:46:f0:91:f7:a4:35:49:9c:05: 09:31:de:4e:57:2b:05:b4:12:f2:90:8e:f6:8b:60:bd:e6:d1: 39:7f:a0:a0:bf:cd:36:6d:e7:70:66:4a:bc:75:f4:e5:33:6a: 4f:bc:62:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTQ5RTYxMTAvBgNVBAUTKDgxNUJGMEVFMjBBNURDQkEzMDU3QzNEMzVCNThFQzE0 NzcyRThGRUYwHhcNMjUwNzAzMDE0MzI1WhcNMjUwNzEwMDE0MzI1WjAYMRYwFAYD VQQDEw02ODY1ZTAzZS1kYmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9TOlA6op5IiVQFlQiY/6eIU8SBGu8yFLs1glxKAZp4gv4TQhp2i86q2Z4x8 yMlYL0Z+8bqKENO5krSc/PvhVhdX5QvnjuHeDiVW/NCMbhjbSYUWrjSwt+hhC9pc 0MJ+G0y2bcprBkA51mbgB2FpMqdBb3GqQR4gPF7/XYuj51GZ4hKLqoZABzuICxwm QFTvTzunXNFZ6mQZifs9W3TqCjjEXQ8+tQyKlxk1CMtY0PJR/5hh70vuQXhVuPbL +vQRzqyEakPalgsmqbypqTr2hag1IQohIW1eHs+Vtw3r3agZztbr5LWieMg0sD82 VZ37O1BLiYeH+EsaHatYaK0IMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNu83jeQ aI1TGHGScPfBSwVyvnyQMB8GA1UdIwQYMBaAFIFb8O4gpdy6MFfD01tY7BR3Lo/v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNDlFNi8zMjQ2RkU2RUVE NDgxMUVDQjVERTEwODJDNEY5QUUwMi9nVnZ3N2lDbDNMb3dWOFBUVzFqc0ZIY3Vq LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dWdnc3aUNsM0xvd1Y4UFRXMWpzRkhjdWotOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NDlFNi8zMjQ2RkU2RUVENDgxMUVDQjVERTEwODJDNEY5QUUwMi9nVnZ3N2lDbDNM b3dWOFBUVzFqc0ZIY3VqLTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAM4Ojxp9UGZBOPgWiLLdAKfHnGIdNTV0uXgjGMgvHRsT8Bg6Edq64C El/6T/pVYI+ZejzLqRIzPuuScDes8FX6t+DX3RSbou/aA2RfbC65Et+Xbqcsebng d1DZRNMSirIHeESZHJ4rHidaNTS0CsGHc+rkJoXK8tcdFGgzcAxV2JtCpBBtipyH e4H/Xltc1YZc6xW3X5aNXIHZ9ny4222/qRQyAYNhuk7E0JXDv6ijUqv04/1KUloh 37hUSSICaVHUHvHREPVB85m6iMEJftFG8JH3pDVJnAUJMd5OVysFtBLykI72i2C9 5tE5f6Cgv802bedwZkq8dfTlM2pPvGIh -----END CERTIFICATE-----Generated at Thu Jul 3 13:50:32 2025 by rpki-client